Cisco 1310 point to point encryption?

Similar Messages

• Cisco 1310 Access Point Rommon Mode

  Hello,
  So I have a Cisco 1310 Access Point that is in Rommon mode. I have the image on the Access point but I did not use the archive download command to extract it. When I use the
  tar -xtract flash://c1310-k9w7-tar[1].124-25d.JA2.tar flash:
  command It gets close to the end but doesnt finish saying there isnt enough space. When I try to delete the file using delete flash://
  c1310-k9w7-tar[1].124-25d.JA2 it wont allow me saying I do not have permission. I tried the rmdir command as well but had no luck. It wont allow me to use the tags /f /r for forceful and recursive, it doesnt recognize them. Anyone know how to delete a directory in rommon mode on an the 1310 access point?
  Thanks

  The delete /recursive /force flash:/ is what I use.  You might try to delete these files also:
  ap:delete flash:private-configap:delete flash:private-multiple-fs
  Thanks,
  Scott
  *****Help out other by using the rating system and marking answered questions as "Answered"*****

• Which Cisco Access Point is Waterprof ? (outdoor:BR1300 + AIR-ANT24120)

  hi,
  My questions to the community :
  i have to choose for a customer some 50 Access points but that must have an external antennas with at least  8 dbi as gain and to be waterprof
  for me the BR1300 + AIR-ANT24120 is a good choice if the BR1300 is Waterproof (For me :normaly all Cisco Access Point Outdoor must be WaterProof : but i want to have a confirmation with a document if possible )
  and it's interessant to knew ,which Cisco Access Point is Waterproof ?
  Think you All !
  Zammit Ikbel

  the 1310 is going to be waterproof, as is the 15xx product line, (152x and 155x).  All this can be found in the data sheet for the AP.
  That being said, you can also put any of the external AP into a NEMA enclosure, and have it be waterproofed, so long as the enclosure is rated as such.
  HTH,
  Steve

• AP1262 bridge to Non-Cisco Access Point?

  I would like to use a Cisco AP1262 in a mobile command vehicle to bridge to any WiFi Access Point that I know the SSID and Pasword to.  Will the 1262 Bridge to a Non-Cisco Access Point?
  If so, any assistance in finding an example configuration would be appreciated.
  Thanks,
  Brian

  Hi Brian,
  Yes, you can configure 1262 as Universal Workgroup bridge where it will associate to any cisco or non-cisco root AP. You can only connect one wired client behind universal WGB.
  You just need to configure "station-role workgroup-bridge universal <wired_client_MAC>" under radio interface of WGB. (1262)
  Something similar should work for your 1262, if you want it in 5GHz, otherwise configure radio 0 interface for WGB
  hostname WGB
  dot11 ssid <SSID-NAME>
     authentication open 
     authentication key-management wpa version 2
     wpa-psk ascii <PASSWORD>
  interface Dot11Radio1
   encryption mode ciphers aes-ccm
   station-role workgroup-bridge universal 068d.098a.d422 <- Ur wired MAC
   ssid <SSID-NAME>
   bridge-group 1
  interface GigabitEthernet0
   bridge-group 1
  NB: I haven't tested this, so you  have to test & confirm. If WPA2/AES is not supported then you may need to choose suitable security protocol & encryption mechanism.
  HTH
  Rasika
  *** Pls rate all useful responses ****

• Can cisco MSE(mobility service engine) configured to work with non-cisco access points?

  I understand that access points can be configured to forwards all the probe requests to cisco wifi controller. cisco MSE(mobility service engine) gets the probes from wifi controller to find the location of the mobile devices.
  My question, can cisco MSE(mobility service engine) be configured to work with non-cisco access points?

  No and the reason why is the NMSP communication from the MSE to the WLC. Other vendors don't support this so there is no communication happening.
  -Scott

• Blackberry Z10 connection with an Aironet Cisco Access Point 1200

  Hi everybody,
  I'm trying without success a connection between a Blackberry Z10 and an Aironet Cisco Access Point 1200.
  We have no BB Server, we would like just to connect the WIFI.
  I've checked this points during the activation of the device:
  There's no LEAP protocolle.
  There's an EAP-Fast possibility.
  There's Mac Address recognition possibility.
  When we try to use the EAP-Fast possibility, we generate a .pac file, but i don't know where i can put this file so that the Blackberry recognize this file. I've search the whole day and didn't find anything... there's simply no explanation with the Z10 around the .pac file without a BB Server.
  I've try the Mac Address recognition and it simply doesn't work (no error the search time is too long)
  Every other older smartphones - Blackberry (there's 4 devices) are working.
  Anyone have an idea about? a suggestion? a list of compatible WIFI Devices?
  Thank you ahead.
  Have a nice day.
  Joel.

  Sorry i don't understand your answer.
  I'm not a developper but a system administrator.
  I just would like to use a Balckberry Z10 with our Wifi/Router Aironet Access Point 1200.
  not more.
  Best regards,
  Joel

• Configuring Cisco Access Points 1602i Air-SAP-1602I-Z-K9

  Hi everyone,
  I am having touble configuring cisco access points 1602i. I have configured them and they are broadcasting SSID and clients are able to connect to them, but the only thing which is troublesome is speed. I have 100Mbps bandwidth speed but at access point I am getting speed between 17 to 25. Can anyone please tell me where I am gone wrong.
  I have Juniper Srx210 configured as backbone for providing internet on fiber. Then further I have attached one POE switch (managable). From that switch I have attached 4 access points.
  One more thing,two ports of Juniper is configured as Vlans, one for staff and one for students. I have attached this POE switch to Student Vlan, but haven't configured ports of POE switch as trunk. Please tell me do I have to configure ports as trunk on POE Switch. Is this the cause of slow bandwidth over access points.
  I am also planning to go for Wlan Controller to manage Access points. When I contact my supplier about it, told me the following:
  "You just need to convert the Access points to autonomous mode. Here are    some details, there is no additional charge."
  https://supportforums.cisco.com/message/3889653
  http://www.cisco.com/en/US/docs/wireless/access_point/conversion/lwapp/upgrade/guide/lwapnote.html#wp160918
  http://www.youtube.com/watch?v=QQ_NuxdRhQ4
  https://supportforums.cisco.com/docs/DOC-14960
  I looked at the links but couldn't understand properly. Then I searched over the internet  and found out that
  "a cisco autonomous access point basically runs on its own while a  lightweight access point uses a centralized device called a wireless lan controller to get its configuration.  autonomous access points are managed  individually, while the lightweight access points can be managed centrally.  also, the switchport configurations to support both types of access points will  differ. "
  I didn't understand, why he suggested to go for Wlan controller and to upgrade access points to autonomous mode, when according to above finding, it says that autonomous access points runs individually.
  Please advice.
  I shall be thankfull

  Hello Scott and Leo,
  Thanks for all your help.
  I have managed to install and configure 4 Access points and Now Access points are giving speed between 25 to 45Mbps. Still not enought but it sloving the purpose. Everyone is enjoying their face book. I will soon get the Cisco Wlan Controller as well. I dont know if there is a way to get more speed from these access points. I am ready to buy more equipments if required.
  Anyway, today I need your guys expretise once again. As you know Junipr Srx 210 is configured for fiber internet to provide internet services to school. Now we are changing the building and transfering the line to new building. This time I want to use Cisco router in place of Juniper Srx210. But I need to know what model will support the current configuration for fiber. Would you please tell me what model/series router will be suitable for fiber internet and for implementing other restrictions.
  I am attaching a picture of current jiniper Srx 210 for your consideration.
  I shall be very thankfull to you
  Sarabjit

• PPPoE on Cisco Access Point

  Hi, Im looking for possibility to configure Cisco Access Points for PPPoE and VPDN anybody knows pls reply to [email protected] tks

  I think it is possible to configure AP to fucntion over PPPOE. But since AP is just a layer2 device, we also need a layer 3 device like router to support PPPOE. Without layer 3 device, it is not possible.

• Cisco Access Points Rebooting

  Has anyone experienced a Cisco Access Point reboot itself, on it's own?

  7 out of 17 are rebooting... but it's not isolated to one IDF it's different spots within the building.i will check the log in flash.
  Hmmmmm ... And if you do a "sh version" to everyone of them it comes up saying something like "by power-on"?
  If this is the case, you may also want to consider the copper cables between your Injector and your AP. 

• PPPoE and VPDN config. in Cisco Access Points

  Hi, Im looking for possibility to configure Cisco Access Points for PPPoE and VPDN anybody knows pls reply to [email protected] tks

  I can only comment on the wireless voice side. Phones will be setting the Qos (Cos and ip precedence) you will need all the devices in the network to understand these QoS and act apropiately, prioritizing voice over other data.
  If you can't guaratee that all devices that the voice will cross will maintain those Cos/dscp settings and will prioritize the voice, you can't guarantee how the voice quality would be.

• Cisco Access point management vlan

  Hi All, 
  I have  all my switches configured to run on native vlan 500 and management on vlan 10 
  with the cisco access point , if I make 500 native or another word trunk untagged vlan then I can't access the router using the BVI interface which is meant to have ip from vlan 10.
  vlan 10 is the management network across our business and all management ips are on that range.
  what are the possible solutions?

  When you connect the access point to the wired LAN, the access point links to the network using a bridge virtual interface (BVI) that it creates automatically. Instead of tracking separate IP addresses for the access point's Ethernet and radio ports, the network uses the BVI.
  When you assign an IP address to the access point using the CLI, you must assign the address to the BVI. Beginning in privileged EXEC mode, follow these steps to assign an IP address to the access point's BVI:
  Step 1 
  configure terminal
  Enter global configuration mode.
  Step 2 
  interface bvi1
  Enter interface configuration mode for the BVI.
  Step 3 
  ip address address
  mask
  Assign an IP address and address mask to the BVI. Note If you are connected to the access point using a Telnet session, you lose your connection to the access point when you assign a new IP address to the BVI. If you need to continue configuring the access point using Telnet, use the new IP address to open another Telnet session to the access point.

• Cisco 1310 used as Bridge: Option for integration to WLC or WCS

  What is the best management option for the Cisco 1310 being used as an Autonomous Bridge (pairs: Root and Non-Root). We want to manage and have some reporting back into the WCS.

  WCS 6.0 configuration guide says that only AP1130, 1200, 1240, 1310
  Bridge are supported.
  The autonomous to lightweight migration support feature provides a
  common application (WCS) from
  which you can perform basic monitoring of autonomous access points along
  with current lightweight
  access points. The following autonomous access points are supported:
  * Cisco Aironet 1130 Access Point
  * Cisco Aironet 1200 Access Point
  * Cisco Aironet 1240 Access Point
  * Cisco Aironet 1310 Bridge

• Cisco 1310

  Greetings...
  I am trying to setup two Cisco 1310 bridges (AIR-BR1310G-A-K9-R) for connectivity between two buildings.  No external antennas have been setup yet and I am just setting the basic configuration.
  One is running c1310-k9w7-mx.123-8.JEA3, the other c1310-k9w7-mx.123-7.JA1…
  I have one setup as a root-bridge, the other as a non-root bridge.
  However, even after disabling authentication and encryption, both units are still not talking to each other.  Arghhh....
  Maybe a second set of eyes can see an issue?  Thanks in advance.
  Root Bridge:
  no aaa new-model
  dot11 ssid GPRM
     authentication open
     infrastructure-ssid
  username Cisco password 7 096F471A1A0A
  bridge irb
  interface Dot11Radio0
  no ip address
  no ip route-cache
  ssid GPRM
  speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
  power local cck 20
  power local ofdm 20
  power client 20
  station-role root bridge
  distance 1
  bridge-group 1
  bridge-group 1 spanning-disabled
  interface FastEthernet0
  no ip address
  no ip route-cache
  bridge-group 1
  bridge-group 1 spanning-disabled
  interface BVI1
  ip address 192.168.0.31 255.255.255.0
  no ip route-cache
  control-plane
  bridge 1 route ip
  Non-Root Bridge:
  no aaa new-model
  dot11 ssid GPRM
     authentication open
     infrastructure-ssid
  username Cisco password 7 02250D480809
  bridge irb
  interface Dot11Radio0
  no ip address
  no ip route-cache
  ssid GPRM
  speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
  no power client local
  power client 20
  power local cck 20
  power local ofdm 20
  station-role non-root bridge
  bridge-group 1
  bridge-group 1 spanning-disabled
  interface FastEthernet0
  no ip address
  no ip route-cache
  bridge-group 1
  bridge-group 1 spanning-disabled
  hold-queue 80 in
  interface BVI1
  ip address 192.168.0.32 255.255.255.0
  no ip route-cache
  control-plane
  bridge 1 route ip
  Thanks for any suggestions....
  Joe

  Joe:
  The no response in the logs mean that the non-root bridge did not reply to the root at all.
  Try to remove "distance 1" command as well. this 1 means 1 Km. it should not have big effect anyway but remove it if you are not using the bridges with 1+ Km distance.
  try to use Dot11radio1 (802.11a) to test bridging if it works or not.
  Also, you can try exchange the roles (root, non root) between two devices and check further.
  successful assocaition should be seen by the command:
  show dot11 associations.
  I hope that after you get both bridges on same version they will sucessfully assocaited.
  Good luck.
  Amjad

• Firmware crash on cisco 1310 Bridge while upgrade to higher version

  Dear experts,
                     My cisco 1310 Bridge old firmware C1310-K9W7-tar.123-8.jea3 is crash while i try to upgarade to the higher version C1310.K9W7-tar.124.10b.jda2 via HTTP service upgrade, any advise to get back the firmware.
  rgds,
  woo.

  It appears that you are assigning IP address properly. For some reason we are not getting a response from TFTP server. This is typically one of 2 things:
  1. Firewall on the TFTP server workstation
  2. Connectivity issue between AP and TFTP server
  I would check firewall settings on the TFTP workstation. Are you connecting the AP to the workstation directly or through a switch? If it is through a switch, you could plugin a different workstation to the AP switchport to make sure it could reach the server as well.
  -Pat

• Connection loss of cisco 1310 bridge.

  Hi Experts,
  I have cisco 1310  bridge  with IOS version  Version 12.3(7)JA5. Sometimes bridges are disconnecting by showing the following error message.
  *Mar 1 01:22:21.856: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 003a.99eb.cc00 Reason: Previous authentication no longer valid
  *Mar 1 01:22:22.115: %DOT11-4-MAXRETRIES: Packet to client 003a.99eb.cc00 reached max retries, removing the client
  *Mar 1 01:22:26.414: %DOT11-4-MAXRETRIES: Packet to client 003a.99eb.cc00 reached max retries, removing the client
  *Mar 1 01:22:26.484: %DOT11-6-ASSOC: Interface Dot11Radio0, Station SNUDH1BRIDGE 003a.99eb.cc00 Associated KEY_MGMT[NONE]
  *Mar 1 01:22:27.386: %DOT11-4-MAXRETRIES: Packet to client 003a.99eb.cc00 reached max retries, removing the client
  *Mar 1 01:22:27.388: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 003a.99eb.cc00 Reason: Previous authentication no longer valid
  *Mar 1 01:22:30.831: %DOT11-4-MAXRETRIES: Packet to client 003a.99eb.cc00 reached max retries, removing the client
  *Mar 1 01:22:31.170: %DOT11-4-MAXRETRIES: Packet to client 003a.99eb.cc00 reached max retries, removing the client
  *Mar 1 01:22:31.786: %DOT11-4-MAXRETRIES: Packet to client 003a.99eb.cc00 reached max retries, removing the client
  *Mar 1 01:22:31.854: %DOT11-6-ASSOC: Interface Dot11Radio0, Station SNUDH1BRIDGE 003a.99eb.cc00 Associated KEY_MGMT[NONE]
  *Mar 1 01:22:33.277: %DOT11-4-MAXRETRIES: Packet to client 003a.99eb.cc00 reached max retries, removing the client
  *Mar 1 01:22:33.279: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 003a.99eb.cc00 Reason: Previous authentication no longer valid
  *Mar 1 01:22:35.760: %DOT11-4-MAXRETRIES: Packet to client 003a.99eb.cc00 reached max retries, removing the client
  *Mar 1 01:22:36.456: %DOT11-4-MAXRETRIES: Packet to client 003a.99eb.cc00 reached max retries, removing the client
  *Mar 1 01:22:37.264: %DOT11-4-MAXRETRIES: Packet to client 003a.99eb.cc00 reached max retries, removing the client
  *Mar 1 01:22:37.356: %DOT11-6-ASSOC: Interface Dot11Radio0, Station SNUDH1BRIDGE 003a.99eb.cc00 Associated KEY_MGMT[NONE]
  *Mar 1 01:22:39.198: %DOT11-4-MAXRETRIES: Packet to client 003a.99eb.cc00 reached max retries, removing the client
  *Mar 1 01:22:39.200: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 003a.99eb.cc00 Reason: Previous authentication no longer valid
  *Mar 1 01:22:39.518: %DOT11-4-MAXRETRIES: Packet to client 003a.99eb.cc00 reached max retries, removing the client
  *Mar 1 01:22:39.771: %DOT11-4-MAXRETRIES: Packet to client 003a.99eb.cc00 reached max retries, removing the client
  *Mar 1 01:22:42.093: %DOT11-4-MAXRETRIES: Packet to client 003a.99eb.cc00 reached max retries, removing the client
  *Mar 1 01:22:43.580: %DOT11-4-MAXRETRIES: Packet to client 003a.99eb.cc00 reached max retries, removing the client
                     Once it is deassossiated, ihave to manually restart the bridges. How can avoid manual restarting so it would automatically associate after some time.
  Also time is getting changed after restarting. Please help me to solve this problems.
  Regards,
  naisam

  Hi,
  Following are the answers for your questions.
  How often does this happen ?
    This is happnenig two or three times in a day and mostly at eavening when the data traffic is high.
  What is the distance between the bridges and RSSI ?
      Distance is near to 600 mtr and RSSI is continously keep on changing between -51 dBM to -75dBM
  Did this ever work without this issue or is this a new install ?
    This installed one year before as a back up to my fiber link. This problem started recently only.
  Thanks,
  Naisam